Consider a Check Point Security Gateway under high load. What mechanism can be used to confirm that important traffic such as control connections are not dropped?
A. fw debug fgd50 on OPSEC_DEBUG_LEVEL=3
B. fw ctl multik prioq
C. fgate -d load
D. fw ctl debug -m fg all
|
Download Printable PDF. VALID exam to help you PASS. |
 |
Questions in CCSM are from version R80.10,
B. fw ctl multik prioq is better choice.
Correct answer should be “B”
The Priority Queues (PrioQ) mechanism is intended to prioritize part of the traffic, when we need to drop packets because the Security Gateway is stressed (CPU is fully utilized).
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk105762
“A” debug of user space floodgate process
“D” kernel debug of floodgate with all options
“D” is better choice
D. fw ctl debug -m fg all